stormous attacks Smith Transport company
Incident Date:
March 28, 2022
Overview
Title
stormous attacks Smith Transport company
Victim
Smith Transport company
Attacker
Stormous
Location
First Reported
March 28, 2022
Maersk Transportation Services Suffers Ransomware Attack
Company Overview
Maersk Transportation Services, a subsidiary of the Danish conglomerate A.P. Møller - Mærsk A/S, is a leading figure in the global transportation and logistics sector. With operations in 130 countries and a robust workforce of nearly 90,000 employees, Maersk stands as the world's largest shipping container company, boasting a ship arriving at a port every 15 minutes.
Previous Cybersecurity Incidents
In 2017, Maersk fell victim to the NotPetya ransomware attack, which necessitated the reinstallation of 4,000 servers, 45,000 PCs, and 2,500 applications. This cyber assault resulted in significant operational disruptions and financial losses estimated up to $300 million.
Vulnerabilities and Mitigation
The recent ransomware attack by the group Stormous has once again put Maersk Transportation Services in the spotlight. While the specific vulnerabilities exploited in this incident remain undisclosed, it is known from past experiences, such as the NotPetya attack, that unpatched vulnerabilities like EternalBlue in Microsoft systems can provide a gateway for cybercriminals. Maersk's proactive stance on cybersecurity, emphasizing the importance of system patching, preparedness, and a deep understanding of core business processes, underscores their commitment to safeguarding their critical systems against such threats.
The ransomware attack on Maersk Transportation Services underscores the persistent cyber threats facing the transportation sector. It highlights the necessity for continuous vigilance and proactive cybersecurity measures to mitigate the risks of future attacks.
Sources
- Maersk Transportation Services website
- ZDNet: "Maersk forced to reinstall 4000 servers, 45000 PCs due to NotPetya attack"
- Kordia: "The Maersk cyber attack - How malware can hit companies of all sizes"
- Industrial Cybersecurity Pulse: "Throwback Attack: How NotPetya Ransomware Took Down Maersk"
- Los Angeles Times: "Cyberattack cost Maersk as much as $300 million and disrupted operations for 2 weeks"
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.